From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mulnick, Al
Sent: Thursday, January 20, 2005 2:27 PM
To: 'ActiveDir@mail.activedir.org'
Subject: RE: [ActiveDir] LDAP export pros/cons
From: Robert N. Leali [mailto:[EMAIL PROTECTED] On Behalf Of Robert N. Leali
Sent: Thursday, January 20, 2005 3:18 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] LDAP export pros/cons
From: [EMAIL PROTECTED] on behalf of Mulnick, Al
Sent: Thu 1/20/2005 2:05 PM
To: 'ActiveDir@mail.activedir.org'
Subject: RE: [ActiveDir] LDAP export pros/cons
Are you looking for risks associated with giving your directory
away to a
semi-trusted third party? Did I paraphrase that
correctly?
Al
-----Original Message-----
From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]
On Behalf Of Robert N. Leali
Sent: Thursday, January 20, 2005 3:01 PM
To:
ActiveDir@mail.activedir.org
Subject: [ActiveDir] LDAP export
pros/cons
Can someone point me to a white paper or article that gives the
pros and
cons and security implications of allowing a semi-trusted
third-party to
access our AD with an LDAP export to an RSA server?
We
are being asked to allow our users to authenticate to a third party
web
portal using their current Windows 2003 AD accounts. The third
party wants
an LDAP export to their RSA server and an account that has
appropriate
access to allow authentication to the AD box. This is in an
extra-net
environment.
Any guidance or advice would be
appreciated.
Robert
----
The information contained in this e-mail
transmittal, including any attached
document(s) is confidential. The
information is intended only for the use of
the named recipient. If you are
not the named recipient, you are hereby
notified that any use, disclosure,
copying, or distribution of the contents
hereof is strictly
prohibited.
List info : http://www.activedir.org/List.aspx
List
FAQ : http://www.activedir.org/ListFAQ.aspx
List
archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List
info : http://www.activedir.org/List.aspx
List
FAQ : http://www.activedir.org/ListFAQ.aspx
List
archive: http://www.mail-archive.com/activedir%40mail.activedir.org/